HIPAA Audits Inbound

HR Daily Advisor

Yesterday we learned that the U.S. The OCR plans to conduct desk and on-site audits for both covered entities and their business associates. The first set of audits will be desk audits of covered entities followed by a second round of desk audits of business associates.

Assessments, Policies, and Training Are Key to HIPAA Compliance

HR Daily Advisor

The keys for plan sponsors to avoid penalties under the Health Insurance Portability and Accountability Act (HIPAA), as well as other liability that may come with data breaches, were discussed by HIPAA experts in a recent webinar. Minimizing HIPAA Privacy Liability.

The Role of HIPAA Laws for Employers & HR

Workology

The Role of HIPAA Laws in Human Resources. When it comes to topics of privacy especially concerning employee healthcare benefits, HIPAA is one of the most misunderstood and miscommunicated for employers and employees. HIPAA is nebulous and in combination with any employer healthcare plan it creates a great deal of confusion and frustration for managers, HR and employees. What is HIPAA? The HIPAA Privacy Rule as outlined by the U.S.

Phishing Scam Leads to $400,000 HIPAA Settlement at Colorado Health Center

HR Daily Advisor

Metro Community Provider Network (MCPN) filed the required breach report with HHS in January 2012. And when MCPN finally did start conducting risk analyses, they were insufficient to comply with HIPAA’s security rule. The settlement also includes a detailed corrective action plan.

HIPAA, Data Breaches and What You Should Know (Even If You’re Not a Healthcare Company)

HR Workplace Services

When it comes to compliance, most everyone agrees that the privacy regulations set forth by HIPAA are necessary. For healthcare organizations, a full commitment to HIPAA compliance is obligatory. a company that offers a self-funded insurance plan to their employees, is considering doing so, or is simply an organization that has a decent number of employees participating in the company-sponsored health plan, it is wise to make sure that you’re fully in the know.

Year 2016 Was Biggest Yet for HIPAA Privacy Enforcement

HR Daily Advisor

The year 2016 was by far the biggest yet for monetary settlements under the Health Insurance Portability and Accountability Act’s (HIPAA) privacy and security rules, and 2017 thus far is proceeding apace, a leading HIPAA attorney told a recent conference. The U.S.

10 Questions To Ask To Ensure Your Cloud Services Provider Is HIPAA-Compliant

SAP Innovation

More companies are looking to the cloud for business and data storage solutions, especially those in the healthcare space. If your business must be HIPAA-compliant, these 10 questions to ensure HIPAA compliance might save you some major headaches down the road.

Data 46

How To Master HIPAA Compliance And Security In The Cloud

SAP Innovation

In a world of tight healthcare budgets and increasing pressure to implement new technology, many healthcare CIOs are looking to the cloud for solutions. For many in the field, these obligations have been a roadblock, and perhaps even a disincentive to make changes, especially digital ones.

10 Questions To Ask To Ensure Your Cloud Services Provider Is HIPAA-Compliant

SAP Innovation

More companies are looking to the cloud for business and data storage solutions, especially those in the healthcare space. If your business must be HIPAA-compliant, these 10 questions to ensure HIPAA compliance might save you some major headaches down the road.

Data 37

NLRB judge strikes down termination based on HIPAA violation

Ohio Employer's Law

HIPAA. Five letters that strike fear into the heart of anyone that handles employee medical information. That is, anyone except an NLRB judge passing judgment on whether an employer was justified in firing a union-supporting employee for clear HIPAA violations. The judge concluded that the employee’s HIPAA violation did not strip her of the Act’s protection. HIPAA isn’t the only law that mandates the confidentiality of medical information.

7 Modules Your Compliance Training Resources Must Include

Kitaboo - Employee Training

Compliance training is usually a part of every employee’s initial training process. Compliance training resources and modules generally consist of a long list of code of conduct which includes topics such as anti-harassment, bribery, FCPA (Foreign Corrupt Practice Act), protection of company data, client interactions, usage of company property and data security, etc. Are your Compliance Training Resources Effective?

Collecting personal data with Anonymous Surveys!

SurveySparrow

How would it feel knowing that you shared some of your most intimate feelings in an online survey that random strangers had access to? Would the sanctity of my privacy be lost?”. Will the answers I shared be leaked to anyone?”. What’s the answer in such circumstances?

Top 5 LMS Workflow Automation Hacks to Simplify Your Employee Training Program

SkyPrep

Providing your workforce with efficient training is crucial for organizations to run seamlessly. You have a variety of actions of what you can accomplish from auto-enrolling your learners into the relevant course to sending out alerts when a learner’s training is to be completed.

HIPAA 52

Entelo’s Commitment to Data Security

Entelo

At Entelo, respecting candidates’ rights is core to our values and making sure compliance is top of mind isn’t just the right thing to do for things like EU-U.S. Protecting our data is the right thing to do for our customers, candidates and anyone Entelo does business with.

Data 42

How to Drive Organizational Compliance with LMS Workflow Automation

SkyPrep

It is essential that your workforce is following your company policies and procedures strictly for your organization to comply with the laws and regulations. Managing employee compliance training and ensuring your workforce is compliant at all times can be a daunting task.

HIPAA 52

Announcing New Features That Give Customers More Control Over Data Security

Quickbase

Today, we’re announcing two new features that give customers more control over the security of their data. As companies continue to migrate their proprietary and sensitive data to the cloud, they are quickly acquiring a broad array of SaaS tools. HIPAA, GLBA, SOX, etc.)

Data 52

7 Modules Your Compliance Training Resources Must Include

Kitaboo - Employee Training

Compliance training is usually a part of every employee’s initial training process. It generally consists of a long list of code of conduct which includes topics such as anti-harassment, bribery, FCPA (Foreign Corrupt Practice Act), protection of company data, client interactions, usage of company property and data security etc. Are your Compliance Training Resources Effective? Employees quickly glance through them and go for the start test button.

FCPA 40

Who Is Subject to the Health Insurance Portability and Accountability Act Regulations?

HR Daily Advisor

The Health Insurance Portability and Accountability Act (HIPAA) imposes requirements to protect and help consumers maintain both their health insurance and their privacy. This is the main provision that most people are referring to when discussing “HIPAA compliance.”.

HOW U.S. CORPORATIONS CAN AVOID CRIPPLING DATA BREACH FINES IN 2018 AND BEYOND

Effortless HR

Most companies understand that a data breach is one of the most potentially damaging events that could occur in the business world. Yet, in 2017, it seems that many still underestimate just how crippling data breach fines in the United States can be. Compliance Online reported that, despite the huge levels of penalties that have already been applied, more than 120 million people were affected by medical data breaches in 2015 alone.

Study 40

Managing The Data Security Risks Of Patient Portals

SAP Innovation

The rapid advances of technology are affecting all areas of our lives, and in the process is throwing up new, and often unexpected challenges to our privacy, especially the security of our personal information.

Data 51

4 Types of Healthcare Careers for Coders

Career Metis

It is no secret that the healthcare industry has been slower on the uptake when it comes to innovative technology. However, now that it’s been fully embraced, the career opportunities for coders in healthcare are endless. Innovation advancements in the field are innumerable.

HIPAA 56

Don’t Let Your Data or Participants Get Lost in Space

HR Daily Advisor

Lost in Space” was a popular television series in the 1960s. Sabotage by crew member Dr. Zachary Smith threw the ship off course and launched endless adventures. The ensuing adventures are anything but fun. Lost or Hijacked Data. by Mary B.

Why Should You Archive Historical Employee Documentation?

LaborSoft

Wrapping up 2018: How and Why you should Archive Historical Documentation and Data. HR professionals at organizations know that they must adhere to strict employee recordkeeping requirements that are dictated by the government.

Don’t Accidentally Give Thieves Access to Your Computer Systems

HR Daily Advisor

If you follow the latest cybersecurity news, you are certainly aware of the Apple-FBI legal dispute in California. The dispute concerns purported “back doors” into iPhones as well as attempts to “hack” secure mobile devices. Indeed, in April, the U.S.

Why Security Should be Top-of-Mind for HCM in ERP Cloud Systems

InfinityHR

Massive data breaches are the real deal. Home Depot , Equifax and Yahoo have all experienced these ruptures due to poor security setup, mismanagement in the monitoring process and by overlooking the very threats that took them down. Data security is an HR responsibility.

Top Compliance Issues in Healthcare for 2019

Precheck

Given stringent federal patient privacy laws and the growing threat of cyberattacks and data breaches, the conventional wisdom is that healthcare organizations are investing more resources than ever on compliance. More Consequences for Data Breaches.

Workday Receives EU Approval on Binding Corporate Rules

Workday

With the May 25 effective date of the European Union General Data Protection Regulation (GDPR) fast approaching, data protection is top of mind for Workday’s customers. Over the past few months, we’ve outlined our privacy-by-design program and provided an overview of our data transfer mechanisms. Simply put, BCRs are a detailed code of conduct that governs the processing and transfer of personal data within a multinational company.

Healthcare Compliance in 2020 and Beyond

Precheck

With data privacy laws being proposed and enforced worldwide, it’s no surprise that many healthcare organizations are revisiting their internal compliance guidelines. A lot of data breaches are accidental,” Aulakh says. Data privacy concerns are an internet-scale problem,” he says.

Three Ways Metrics Can Help Avoid Common Compliance Mistakes

Cornerstone On Demand

No company wants to end up in the headlines for a code of conduct violation, or for not updating its policies based on the latest legislation. The problem, reports Harvard Business Review , is that compliance training is not enough. million fine for HIPAA violations.

4 Ways to Kill Employee Trust

HRExecutive

A wide range of tools and technologies now in use by HR organizations around the world are collecting volumes of employee-related data. Additionally, what data a company collects and how they are used significantly impacts employee trust. The sister of privacy is security.

Data 89

People Analytics: Tapping into a Powerful Resource

TalentCulture

HR has relied on the use of data and analytics for years but has only recently begun to embrace people analytics. Defined as using a data-driven approach to inform your people practices, programs and processes, people analytics is a powerful resource for HR.

People Analytics and AI in the Workplace: Four Dimensions of Trust

Analytics in HR

AI and People Analytics have taken off. As I’ve written about in the past , the workplace has become a highly instrumented place. While I know HR professionals take the job of ethics and safety seriously, I’d like to point out some ethical issues we need to consider.

Employee Network Inc. Successfully Achieves SOC 2 Type 1 Compliance

eni

a benefits integration and engagement company, announces the successful completion of its 2019 SOC 2 Type 1 examination. completed the engagement. eni was measured against the criteria for Security, Availability, and, Confidentiality. The post Employee Network Inc.

PlatCore 2.3: Featuring Assignments, Reports, Roles, Skills & more…

PlatCore LMS

To learn more: Join our upcoming webinar Thu, Apr 18 , or. Schedule a personalized demo to see the PlatCore LMS for yourself. As always, they are FREE if you’re already on the platform. (If If you’re not already on the LMS, what are you waiting for!?).

Top Healthcare Compliance Initiatives for 2018

Precheck

It’s not just the financial industry that faces risks from cybercriminals; healthcare organizations, with their massive databases full of personal information, have become common targets as well. Compliance specialists and leaders will have their work cut out for them in the coming year. “We

The Final Two: South Dakota, Alabama Pass Breach Notification Laws

HR Daily Advisor

Every state in the Union now has some type of law in place requiring companies to notify affected individuals of a data breach involving their information. South Dakota and Alabama, the final holdouts, enacted such measures in March. Alabama Data Breach Notification Act.

Data 57

Can Wearable Technology and Predictive Analytics Prevent Workplace Violence?

HR Daily Advisor

While wearables may pose a threat to your company’s secure data, could they potentially save your employees’ lives, too? However, once this dialogue ensues, it will be important for organizations to focus on the development of leading metrics (i.e., the public, risky populations, etc.).